Количество 7
Количество 7
CVE-2025-12816
An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions.
CVE-2025-12816
An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions.
CVE-2025-12816
CVE-2025-12816
CVE-2025-12816
An interpretation-conflict (CWE-436) vulnerability in node-forge versi ...
GHSA-5gfm-wpxj-wjgq
node-forge has an Interpretation Conflict vulnerability via its ASN.1 Validator Desynchronization
BDU:2025-15402
Уязвимость функции asn1.validate() сценария forge/lib/asn1.js набора криптографических утилит и инструментов для разработки веб-приложений Forge, позволяющая нарушителю обойти ограничения безопасности
openSUSE-SU-2026:20177-1
Security update for golang-github-prometheus-prometheus
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-12816 An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions. | CVSS3: 8.6 | 0% Низкий | 3 месяца назад |
 | CVE-2025-12816 An interpretation-conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security decisions. | CVSS3: 8.6 | 0% Низкий | 3 месяца назад |
 | CVE-2025-12816 CVE-2025-12816 | CVSS3: 8.6 | 0% Низкий | 2 месяца назад |
| CVE-2025-12816 An interpretation-conflict (CWE-436) vulnerability in node-forge versi ... | CVSS3: 8.6 | 0% Низкий | 3 месяца назад |
| GHSA-5gfm-wpxj-wjgq node-forge has an Interpretation Conflict vulnerability via its ASN.1 Validator Desynchronization | CVSS3: 8.6 | 0% Низкий | 2 месяца назад |
 | BDU:2025-15402 Уязвимость функции asn1.validate() сценария forge/lib/asn1.js набора криптографических утилит и инструментов для разработки веб-приложений Forge, позволяющая нарушителю обойти ограничения безопасности | CVSS3: 8.6 | 0% Низкий | 3 месяца назад |
 | openSUSE-SU-2026:20177-1 Security update for golang-github-prometheus-prometheus | 4 дня назад |
Уязвимостей на страницу